HOME     MENU     SEARCH     NEWSLETTER    
NEWS & INFORMATION FOR TECHNOLOGY PURCHASERS. UPDATED 7 MINUTES AGO.
You are here: Home / Enterprise I.T. / Security Threats Diversify, Modernize
Build Apps 5x Faster
For Half the Cost Enterprise Cloud Computing
On Force.com
Security Threats Diversify, Modernize, Sophos Report Warns
Security Threats Diversify, Modernize, Sophos Report Warns
By Jennifer LeClaire / NewsFactor Network Like this on Facebook Tweet this Link thison Linkedin Link this on Google Plus
PUBLISHED:
DECEMBER
05
2012

Security threats are coming from all sides. Now Sophos is outlining some of them in its Security Threat Report 2013, which details IT security trends in 2012 and what to expect in 2013.

As Sophos describes it, 2012 was a year of new platforms and modern malware. What was once a homogeneous world of Windows systems is now a landscape of diverse platforms. Modern malware is taking advantage of these trends, the security firm said, creating new challenges for IT security professionals.

"Two of the defining terms of 2012 are 'empower' and 'evolve.' Attacks and threats -- on PCs, Macs and mobile devices -- continue to evolve as does the technology to combat them," said Gerhard Eschelbeck, CTO at Sophos.

"As users demand more and better ways to do their jobs, IT continues to evolve, bringing forth a new set of operating systems and other advancements, replete with different security models and attack vectors, making it crucial for security technology to evolve, ensuring that end users are protected and empowered -- no matter what platform, device, or operating system they choose."

Android Targeted

Sophos also reports that malware authors now attack Android devices more often than PCs. Nearly 10 percent of Android devices in the U.S. have seen a malware attack, compared with only about 6 percent of PCs. We asked Michael Disabato, managing vice president of Network and Telecom at Gartner, for his take on the revelation.

"Google Play is not curated as well as iOS. Android is designed to be a very flexible operating system so it's easy to root. Why do people rob banks? That's where the money is. Why are people going after Android? Because they can, because there's money in it, and because you can't get to iOS without a lot of work," Disabato told us.

"Why aren't malware authors going after Windows? Windows gets defended just as quickly as possible. But very few people are installing malware detection and mitigation software on their smartphones."

Beware Legitimate Websites

Beyond smartphones, more than 80 percent of attacks were redirects, the majority of which were from legitimate Websites that were hacked, according to Sophos. Most of the exposure is still coming from clicking links in e-mails and browsing Web pages that are carrying malicious code.

Sophos concluded that the riskiest countries for malware attacks are Hong Kong, Taiwan, UAE, Mexico and India, while the safest countries are Norway, Sweden, Japan, United Kingdom and Switzerland.

While a large proportion of cybercrime continues to be opportunistic, Sophos is predicting increased availability of malware testing platforms -- some even providing criminals with money-back guarantees -- will make it more likely for malware to slip through traditional business security systems. Sophos predicted enterprises could expect to see an increase in the number of incidents where attackers have gained and sustained surreptitious access to corporate networks.

Other Trends to Watch

Other trends Sophos predicted for the year ahead included more basic Web server mistakes, more irreversible malware and more attacks that place a greater focus on the need for behavioral protection mechanisms as well as system hardening and backup/restore procedures. Also expect to see attack toolkits with premium features, better exploit mitigation, integration, privacy and security challenges.

"Due to an uptick in credential-based extractions, IT professionals will need to pay equal attention to protecting both their computers as well as their Web server environment," the report said.

"With GPS and near field communication (NFC) becoming more integrated into mobile platforms, expect to see a convergence in our digital and physical lives. This trend is identifiable not just for mobile devices, but for computing in general. In the coming year, watch for new examples of attacks built on these technologies."

Tell Us What You Think
Comment:

Name:

Like Us on FacebookFollow Us on Twitter
TOP STORIES NOW
MAY INTEREST YOU
Salesforce.com is the market and technology leader in Software-as-a-Service. Its award-winning CRM solution helps 82,400 customers worldwide manage and share business information over the Internet. Experience CRM success. Click here for a FREE 30-day trial.
MORE IN ENTERPRISE I.T.
Product Information and Resources for Technology You Can Use To Boost Your Business

NETWORK SECURITY SPOTLIGHT
An easily avoided security lapse -- failure to use two-factor authentication on a single server -- is being blamed for the massive computer breach that hit JPMorgan Chase this past summer.

ENTERPRISE HARDWARE SPOTLIGHT
Flying under the radar just before Christmas, HP has launched a new version of its Chromebook 14, most notable for its touch screen and full high-definition display, plus more powerful specs.
© Copyright 2014 NewsFactor Network, Inc. All rights reserved. Member of Accuserve Ad Network.